Lucene search

CiscoCVE-2019-1730

HistoryMay 15, 2019 - 5:29 p.m.

CVE-2019-1730

2019-05-1517:29:01

CWE-264

cisco

web.nvd.nist.gov

cve-2019-1730

bash shell

cisco

nx-os software

vulnerability

authentication

local attacker

guest shell

cli

network-admin user

privilege escalation

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

6.7

Confidence

High

EPSS

Percentile

5.1%

JSON

A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to bypass the limited command set of the restricted Guest Shell and execute commands at the privilege level of a network-admin user outside of the Guest Shell. The attacker must authenticate with valid administrator device credentials. The vulnerability is due to the incorrect implementation of a CLI command that allows a Bash command to be incorrectly invoked on the Guest Shell CLI. An attacker could exploit this vulnerability by authenticating to the device and entering a crafted command at the Guest Shell prompt. A successful exploit could allow the attacker to issue commands that should be restricted by a Guest Shell account.

Affected configurations

Nvd

Vulners

Node

cisconx-osRange7.0\(3\)i4–7.0\(3\)i4\(9\)

cisconx-osRange7.0\(3\)i7–7.0\(3\)i7\(4\)

AND

cisconexus_3000Match-

cisconexus_3100Match-

cisconexus_3100-zMatch-

cisconexus_3100vMatch-

cisconexus_3200Match-

cisconexus_3400Match-

cisconexus_3500Match-

cisconexus_3524-xMatch-

cisconexus_3524-xlMatch-

cisconexus_3548-xMatch-

cisconexus_3548-xlMatch-

cisconexus_9000vMatch-

cisconexus_92160yc-xMatch-

cisconexus_92300ycMatch-

cisconexus_92304qcMatch-

cisconexus_92348gc-xMatch-

cisconexus_9236cMatch-

cisconexus_9272qMatch-

cisconexus_93108tc-exMatch-

cisconexus_93108tc-fxMatch-

cisconexus_93120txMatch-

cisconexus_93128txMatch-

cisconexus_93180lc-exMatch-

cisconexus_93180yc-exMatch-

cisconexus_93180yc-fxMatch-

cisconexus_93216tc-fx2Match-

cisconexus_93240yc-fx2Match-

cisconexus_9332cMatch-

cisconexus_9332pqMatch-

cisconexus_93360yc-fx2Match-

cisconexus_9336c-fx2Match-

cisconexus_9336pq_aci_spineMatch-

cisconexus_9348gc-fxpMatch-

cisconexus_9364cMatch-

cisconexus_9372pxMatch-

cisconexus_9372px-eMatch-

cisconexus_9372txMatch-

cisconexus_9372tx-eMatch-

cisconexus_9396pxMatch-

cisconexus_9396txMatch-

Node

cisconx-osRange8.1–8.3\(1\)

AND

cisconexus_7000Match-

cisconexus_7700Match-

Node

cisconx-osRange7.0\(3\)–7.0\(3\)f3\(5\)

AND

cisconexus_36180yc-rMatch-

cisconexus_3636c-rMatch-

cisconexus_9504Match-

cisconexus_9508Match-

cisconexus_9516Match-

VendorProductVersionCPE
cisconx-os*cpe:2.3:o:cisco:nx-os:*:*:*:*:*:*:*:*
cisconexus_3000-cpe:2.3:h:cisco:nexus_3000:-:*:*:*:*:*:*:*
cisconexus_3100-cpe:2.3:h:cisco:nexus_3100:-:*:*:*:*:*:*:*
cisconexus_3100-z-cpe:2.3:h:cisco:nexus_3100-z:-:*:*:*:*:*:*:*
cisconexus_3100v-cpe:2.3:h:cisco:nexus_3100v:-:*:*:*:*:*:*:*
cisconexus_3200-cpe:2.3:h:cisco:nexus_3200:-:*:*:*:*:*:*:*
cisconexus_3400-cpe:2.3:h:cisco:nexus_3400:-:*:*:*:*:*:*:*
cisconexus_3500-cpe:2.3:h:cisco:nexus_3500:-:*:*:*:*:*:*:*
cisconexus_3524-x-cpe:2.3:h:cisco:nexus_3524-x:-:*:*:*:*:*:*:*
cisconexus_3524-xl-cpe:2.3:h:cisco:nexus_3524-xl:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	nx-os	*	cpe:2.3:o:cisco:nx-os::::::::
cisco	nexus_3000	-	cpe:2.3:h:cisco:nexus_3000:-:::::::*
cisco	nexus_3100	-	cpe:2.3:h:cisco:nexus_3100:-:::::::*
cisco	nexus_3100-z	-	cpe:2.3:h:cisco:nexus_3100-z:-:::::::*
cisco	nexus_3100v	-	cpe:2.3:h:cisco:nexus_3100v:-:::::::*
cisco	nexus_3200	-	cpe:2.3:h:cisco:nexus_3200:-:::::::*
cisco	nexus_3400	-	cpe:2.3:h:cisco:nexus_3400:-:::::::*
cisco	nexus_3500	-	cpe:2.3:h:cisco:nexus_3500:-:::::::*
cisco	nexus_3524-x	-	cpe:2.3:h:cisco:nexus_3524-x:-:::::::*
cisco	nexus_3524-xl	-	cpe:2.3:h:cisco:nexus_3524-xl:-:::::::*

Rows per page:

1-10 of 481

CNA Affected

[
  {
    "product": "Cisco NX-OS Software",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "8.3(1)",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

www.securityfocus.com/bid/108397

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190515-nxos-bash-bypass

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

6.7

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for CVE-2019-1730